Drupal Multimedia
Drupal Multimedia, by Aaron Winborn, Available Now!Popular content
- Built a New Widget! (75,026)
- Erik Gecas's Art Show (71,621)
- Drupal Multimedia Book Announcement at Drupal.org (67,260)
- YouTube Expands API: Good for Embedded Media Field (62,967)
- Map a Video Feed! (62,278)
User login
Navigation
Drupal Security Team
A Visit from the Drupal Security Police
Thu, 06/04/2009 - 01:52 — aaronCaveat: The following should be read with the understanding that I absolutely respect and admire the job that the volunteers of the Drupal Security Team do! Without their gallant efforts, Drupal wouldn't be the safe framework that it is. And as an aside, all module maintainers, developers, and anyone interested in learning more about how to lock down their site should read Cracking Drupal: A Drop in the Bucket
Last week, I received a visit from the Drupal Security Team, telling me that the Embedded Media Field module contains a XSS vulnerability.
That put the fear of Drupal into me! The next day, I had a spanking new fix for it, and was ready to make a new release. That's when I actually read the instructions about what to do when you've been contacted by the Drupal Security Team...
Similar
Recent comments
Syndicate
Hi:
Quick question - can i embed a private YT video using the above method?
I would really appreciate some help here, thank you :)
Kind regards,
Michael.
very nice
We're considering using drupal for a new electrical business that we are starting here in New Zealand. This has helped cement my ideas about it. Thanks!
I'm having theming problems, could you explain how you themed yours? Mine is here - http://iommo.com/feature and it's really bare bones. Thanks for a great demonstration!
@Danny Concannon, you've never sat beside someone who knew nothing about the things you do, and watched them try to post something/anything on Drupal, have you?
I wish this was available for D6.